mirrors
/
nextcloud
mirror of https://github.com/nextcloud/server.git
Watch 1
Star 0
Fork 0
Code Issues 0 Releases 984 Wiki Activity
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
73272 Commits
383 Branches
Tree: 4ac2375ca2
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '4ac2375ca2'
${ noResults }
nextcloud/apps/settings/lib/Controller/AdminSettingsController.php

AdminSettingsController.php 4.2KB
Raw Blame History

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130 
  1. <?php

  2. /**

  3.  * @copyright Copyright (c) 2016 Arthur Schiwon <blizzz@arthur-schiwon.de>

  4.  *

  5.  * @author Arthur Schiwon <blizzz@arthur-schiwon.de>

  6.  * @author Christoph Wurst <christoph@winzerhof-wurst.at>

  7.  * @author Lukas Reschke <lukas@statuscode.ch>

  8.  * @author Robin Appelman <robin@icewind.nl>

  9.  * @author Kate Döen <kate.doeen@nextcloud.com>

  10.  *

  11.  * @license GNU AGPL version 3 or any later version

  12.  *

  13.  * This program is free software: you can redistribute it and/or modify

  14.  * it under the terms of the GNU Affero General Public License as

  15.  * published by the Free Software Foundation, either version 3 of the

  16.  * License, or (at your option) any later version.

  17.  *

  18.  * This program is distributed in the hope that it will be useful,

  19.  * but WITHOUT ANY WARRANTY; without even the implied warranty of

  20.  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the

  21.  * GNU Affero General Public License for more details.

  22.  *

  23.  * You should have received a copy of the GNU Affero General Public License

  24.  * along with this program. If not, see <http://www.gnu.org/licenses/>.

  25.  *

  26.  */

  27. namespace OCA\Settings\Controller;

  28. 

  29. use OC\AppFramework\Middleware\Security\Exceptions\NotAdminException;

  30. use OCP\AppFramework\Controller;

  31. use OCP\AppFramework\Http\Attribute\OpenAPI;

  32. use OCP\AppFramework\Http\TemplateResponse;

  33. use OCP\AppFramework\Services\IInitialState;

  34. use OCP\Group\ISubAdmin;

  35. use OCP\IGroupManager;

  36. use OCP\INavigationManager;

  37. use OCP\IRequest;

  38. use OCP\IUser;

  39. use OCP\IUserSession;

  40. use OCP\Settings\IDeclarativeManager;

  41. use OCP\Settings\IManager as ISettingsManager;

  42. use OCP\Template;

  43. 

  44. #[OpenAPI(scope: OpenAPI::SCOPE_IGNORE)]

  45. class AdminSettingsController extends Controller {

  46. 	use CommonSettingsTrait;

  47. 

  48. 	public function __construct(

  49. 		$appName,

  50. 		IRequest $request,

  51. 		INavigationManager $navigationManager,

  52. 		ISettingsManager $settingsManager,

  53. 		IUserSession $userSession,

  54. 		IGroupManager $groupManager,

  55. 		ISubAdmin $subAdmin,

  56. 		IDeclarativeManager $declarativeSettingsManager,

  57. 		IInitialState $initialState,

  58. 	) {

  59. 		parent::__construct($appName, $request);

  60. 		$this->navigationManager = $navigationManager;

  61. 		$this->settingsManager = $settingsManager;

  62. 		$this->userSession = $userSession;

  63. 		$this->groupManager = $groupManager;

  64. 		$this->subAdmin = $subAdmin;

  65. 		$this->declarativeSettingsManager = $declarativeSettingsManager;

  66. 		$this->initialState = $initialState;

  67. 	}

  68. 

  69. 	/**

  70. 	 * @NoCSRFRequired

  71. 	 * @NoAdminRequired

  72. 	 * @NoSubAdminRequired

  73. 	 * We are checking the permissions in the getSettings method. If there is no allowed

  74. 	 * settings for the given section. The user will be gretted by an error message.

  75. 	 */

  76. 	public function index(string $section): TemplateResponse {

  77. 		return $this->getIndexResponse('admin', $section);

  78. 	}

  79. 

  80. 	/**

  81. 	 * @param string $section

  82. 	 * @return array

  83. 	 */

  84. 	protected function getSettings($section) {

  85. 		/** @var IUser $user */

  86. 		$user = $this->userSession->getUser();

  87. 		$isSubAdmin = !$this->groupManager->isAdmin($user->getUID()) && $this->subAdmin->isSubAdmin($user);

  88. 		$settings = $this->settingsManager->getAllowedAdminSettings($section, $user);

  89. 		$declarativeFormIDs = $this->declarativeSettingsManager->getFormIDs($user, 'admin', $section);

  90. 		if (empty($settings) && empty($declarativeFormIDs)) {

  91. 			throw new NotAdminException("Logged in user doesn't have permission to access these settings.");

  92. 		}

  93. 		$formatted = $this->formatSettings($settings);

  94. 		// Do not show legacy forms for sub admins

  95. 		if ($section === 'additional' && !$isSubAdmin) {

  96. 			$formatted['content'] .= $this->getLegacyForms();

  97. 		}

  98. 		return $formatted;

  99. 	}

  100. 

  101. 	/**

  102. 	 * @return bool|string

  103. 	 */

  104. 	private function getLegacyForms() {

  105. 		$forms = \OC_App::getForms('admin');

  106. 

  107. 		$forms = array_map(function ($form) {

  108. 			if (preg_match('%(<h2(?P<class>[^>]*)>.*?</h2>)%i', $form, $regs)) {

  109. 				$sectionName = str_replace('<h2' . $regs['class'] . '>', '', $regs[0]);

  110. 				$sectionName = str_replace('</h2>', '', $sectionName);

  111. 				$anchor = strtolower($sectionName);

  112. 				$anchor = str_replace(' ', '-', $anchor);

  113. 

  114. 				return [

  115. 					'anchor' => $anchor,

  116. 					'section-name' => $sectionName,

  117. 					'form' => $form

  118. 				];

  119. 			}

  120. 			return [

  121. 				'form' => $form

  122. 			];

  123. 		}, $forms);

  124. 

  125. 		$out = new Template('settings', 'settings/additional');

  126. 		$out->assign('forms', $forms);

  127. 

  128. 		return $out->fetchPage();

  129. 	}

  130. }